Alternatives and similar repositories for attest-sbom

Users that are interested in attest-sbom are comparing it to the libraries listed below

• github / actions-oidc-debugger
  An Action for printing OIDC claims in GitHub Actions.
  ☆109Updated last week
• actions / publish-action
  ☆52Updated last week
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆105Updated last month
• actions / attest
  Action for generating attestations for workflow artifacts
  ☆59Updated last week
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆211Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆334Updated last week
• github / lock
  Lock Action to support deployment locking for the branch-deploy Action
  ☆47Updated 3 months ago
• actions / reusable-workflows
  Reusable workflows for developing actions
  ☆72Updated 3 weeks ago
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆135Updated this week
• github / stale-repos
  Find stale repositories in a GitHub organization.
  ☆188Updated this week
• GitHubSecurityLab / actions-permissions
  GitHub token permissions Monitor and Advisor actions
  ☆337Updated last week
• actions / container-toolkit-action
  Template repo for creating container actions using https://github.com/actions/toolkit/
  ☆146Updated this week
• micnncim / action-label-syncer
  GitHub Action to sync GitHub labels in the declarative way
  ☆216Updated 2 years ago
• SvanBoxel / organization-workflows
  Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.
  ☆135Updated last year
• octokit / graphql-action
  A GitHub Action to send queries to GitHub's GraphQL API
  ☆132Updated last week
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated last year
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆58Updated this week
• zgosalvez / github-actions-ensure-sha-pinned-actions
  A Github Action to ensure that actions are pinned to full length commit SHAs
  ☆46Updated this week
• actions / gh-actions-cache
  A GitHub (gh) CLI extension to manage the GitHub Actions caches being used in a GitHub repository.
  ☆319Updated 11 months ago
• actions / action-versions
  ☆34Updated this week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆193Updated 4 months ago
• crazy-max / ghaction-github-runtime
  GitHub Action to expose GitHub runtime to the workflow
  ☆80Updated 3 weeks ago
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆295Updated last month
• advanced-security / sbom-generator-action
  ☆16Updated 7 months ago
• github / issue-labeler
  An action for automatically labelling issues
  ☆225Updated 9 months ago
• qoomon / actions--access-token
  Get rid of personal access tokens (PAT), use temporary GitHub Application access tokens instead!
  ☆146Updated this week
• actions / runner-container-hooks
  Runner Container Hooks for GitHub Actions
  ☆114Updated last week
• github / actions-oidc-gateway-example
  Example of using Actions OIDC token to proxy into a private network
  ☆99Updated 6 months ago
• 1Password / check-signed-commits-action
  GitHub Action to check PRs for signed commits
  ☆55Updated last year
• peter-murray / workflow-application-token-action
  GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.
  ☆197Updated 6 months ago